Kamis, 13 September 2012

INSTALLING MUTILLIDAE ON LINUX

Mutillidae is a free, open source web application provided to allow security enthusiest to pen-test and hack a web application.

I use xampp as a localhost.

1. download xampp and mutiliidae

2. install xampp

After downloading simply type in the following commands:

       a.  Go to a Linux shell and login as the system administrator root:
       su
    b. Extract the downloaded archive file to /opt:
       tar xvfz xampp-linux-1.8.0.tar.gz -C /opt

            That's all. XAMPP is now installed below the /opt/lampp directory.

       c.  To start XAMPP simply call this command:
       /opt/lampp/lampp start

           You should now see something like this on your screen:
       Starting XAMPP 1.8.0...
       LAMPP: Starting Apache...
       LAMPP: Starting MySQL...
       LAMPP started.
            Ready. Apache and MySQL are running.

Test

OK, that was easy but how can you check that everything really works? Just type in the following URL at your favourite web browser:
http://localhost
Now you should see the start page of XAMPP containing some links to check the status of the installed software and some small programming examples.









3.  install mutillidae

  •  unzip mutillidae












  • place the entire "mutillidae" directory into XAMPP's "htdocs" directory
  • browse to mutillidae at http://localhost/mutillidae













  • click the "setup/reset the DB" link in the main menu
  • Get rid of PHP "strict" errors. They are not compatible with the OWASP ESAPI classes in use in Mutillidae 2.0. The error modifies headers disrupting functionality so this is not simply an annoyance issue. To do this, go to the PHP.INI file and change the line that reads "error_reporting = E_ALL | E_STRICT" to "error_reporting = E_ALL & ~E_NOTICE & ~E_WARNING & ~E_DEPRECIATED". .
















  • Once the modification is complete, restart the Apache service. If you are not sure how to restart the service, reboot

























Tidak ada komentar:

Posting Komentar